Stalker and GDPR breach

[LittleShark]

Someone signed me up for a married dating site.

Whoever did this clearly knows/knew me well as they had taken a lot of time filling in a profile with all my physical and personal details and likes. Not stuff you could pull from social media as it is not listed. It was rather creepy.
It was listed using my personal email which I don’t actually use other than signing up for things. Friends wouldn’t know it as I use WhatsApp and I don’t message people via email.

I used to attend a sports class a year ago, but left as a couple of the women who ran it were ripping people off, and would often bitch and say really rude and nasty things about others in the class. Not my thing. I used to be good friends with one of them. Recently this sports club emailed round an invite for a womens only class. There was no unsubscribe button at the bottom so I replied to the email asking to be removed. The reply email was to one of these women mentioned above, the one who I used to be good friends with.

The ONLY person that would know that detail about me as well as having my email would be this woman from the sports class.

AIBU to be annoyed that this is clearly a breach of GDPR – using my email address from their business account to sign me up maliciously to something?
I know I can’t prove it was her/them, but there is no one else it could possibly be. It annoys me that they might be using other peoples email addresses to do this to others too.

Is it worth reporting as a GDPR breach?

You can’t report it as a GDPR breach without evidence that they did it, and “not many people know my email address” isn’t sufficient evidence.

It sounds like a lot of effort to go to for somebody you were previously friends at a sports class with, in the absence of anything actually happening to make her so angry at you. It’s a very malicious, personal sort of thing to do which suggests somebody angry at you and seeking revenge. Who in your life do you think would fit that bill?

I don't know anyone else in my life that would fit the bill. All my friends are very calm chilled out people.

I fell out with this person as she started becoming rather obsessive that I was chasing her husband (I wasn't - we just got on well as mates) and she previously made a rather nasty Facebook post that was blatantly about me along with some other odd stalking behaviour. This was 9 months ago and I decided to unfriend and block both her and her husband, as I don't need weird stuff like that in my life. Not really thought out it since.

But... the stuff written in the profile could only have been written by someone who knew me well. And it also mentioned something about my sexuality which again very few people were aware of (hence me not being interested in her husband!), so it also indicated it could be her.

I guess I just find the whole thing rather creepy and don't understand why after 9 months she would want to do something like this.

I cannot possibly think of a single person who would otherwise do something that weird.

I think if you want to tackle the issue head on then you need to go to the police with what you've said here and be prepared to stand by it if you want an investigation. Unfortunately I think you wither have to be prepared to see it through as harassment and stalking or not- I dont think you can just report a GDPR breach as it wont go anywhere and could fuel the fire. good luck x

If she has previously posted malicious things about you then I'd say this is harassment. You could try the police. Or go all wagatha on her and send another email from a different account saying your old one was hacked or something and see if anything gets posted. Or you could ask the internet dating people if they have the IP address of the profile and then ask someone in IT to help?

Do you have Facebook and use the same email, some Apps and quizzes steal email addresses.

Are they registered with the ICO office but I don’t think you’ll be able to prove they did, if they did.

Just read your update, still think it’ll be difficult to prove, she sounds unhinged though!

There's often a confirmation email when you sign up for something to complete registration, I'd be worried she/whoever has email access and would be changing passwords asap

Thanks for the replies.
I am now 100% certain it was this person, as no one else could have that level of detail about me as well as knowing my private email.

I tried the IP address option but unfortunately as I got the account deleted then this wasn’t possible.

She is certainly unhinged, but does have a history of MH issues and psychotic episodes that she tries to keep hidden.

Would the police really be bothered? It’s just more creepy than anything else! I don’t like the idea of wasting police time just for some woman with psychiatric issues.

Prior to the nasty FB post there were also nasty WhatsApp messages, although she claimed to have got my phone number from her husband’s phone (I was friends with her via him) and not from the business database… (I had never given her my phone number, and technically he only had my number due to the sports club, although we did become friends).
I’m contemplating raising it as a GDPR breach to the headquarters of the sports club, as it’s a large franchise.

I don’t feel threatened by her, but I just don’t want these nasty people in my life and really don’t understand why 9 months later she is still intent on harassing me when I’ve not really given it a second though.